[email protected] +603-2181 3666
Extol Threat Intelligent Notification
Fraudsters can have rights, too
May 21, 2015

We have recently come across a method of getting personal information that was interesting from the technical point of view. Our customer received an email saying that someone had used his Live ID to distribute unsolicited email, so his account would be blocked. The email suggested that, to prevent the account from being blocked, the […]

CryptoLocker is now CTB Locker
May 21, 2015

BREAKING NEWS! In a previous advisory, dated 5 January on online attacks, it was reported that CryptoLocker was one of the most dangerous of ransomware (see Definition).  It encrypts your files and asks a sum of money in exchange for the decryption key. CryptoLocker network was taken down by state authorities and private entities last […]

The MsnMM Campaigns [pdf] For over half a decade, the Naikon APT waged multiple attack campaigns on sensitive targets throughout South-eastern Asia and around the South China Sea. It maintained a heavy offensive focus on Myanmar, Vietnam, Singapore, the Philippines, Malaysia, and Laos. Targets and victims included ASEAN governmental agencies and government departments, investment enterprises, […]

IT News

Last week, KrebsOnSecurity broke the news that sensitive data apparently stolen from hundreds of thousands of customers mobile spyware maker mSpy had been posted online. mSpy has since been quoted twice by other publications denying a breach of its systems. Meanwhile, this blog has since contacted multiple people whose data was published to the deep Web, […]

IT News

A security firm made headlines earlier this month when it boasted it had thwarted plans by organized Russian cyber criminals to launch an attack against multiple US-based banks. But a closer look at the details behind that report suggests the actors in question were relatively unsophisticated Nigerian phishers who’d simply registered a bunch of new fake bank […]

IT News

The St. Louis Federal Reserve today sent a message those it serves alerting them that in late April 2015 attackers succeeded in hijacking the domain name servers for the institution. The attack redirected Web searches and queries for those seeking a variety of domains run by the government entity to a Web page set up by […]

When it comes to reporting on breaches involving customer accounts at major brands, the news media overall deserves an F-minus. Hardly a week goes by when I don’t hear from readers about a breathless story proclaiming that yet another household brand name company has been hacked. Upon closer inspection, the stories usually are based on […]

Unknown Ransomware
May 18, 2015

The onslaught of malware seems to be unstoppable.  Many of these malware campaigns use the ever popular Angler EK (exploit kit) to distribute different types of malware. Recently, it distributed a ransomware called AlphaCrypt, which seem to imitate TeslaCrypt, but operates like the infamous Cryptowall 3.0.  Soon after, the malicious payload changed.  It is an […]

Technology has for a long time been out of the laboratories and has held, in its own right, a position in the companies’ executive committees. The transformation that ‘digital technology’ is injecting into all types of organizations requires that the top-level executives understand the basis of this new era.  According to Gartner’s report “2014 Gartner […]